Nextgen Gallery bypassing security roles
-
On my site, the navigation menus are Pages. Since this alters the site design, I restrict regular users from creating, editing, deleting Pages. They are allowed access to Posts. They are also allowed to access NextGen Galleries.
However in the process of creating a Nextgen Gallery, they have the option to ‘Create New Page’. This function bypasses the WordPress security roles, and allows non-authorized users to create Pages, which alters my site design in a bad way.This seems like a security bug to me.
If anyone can help, am open to workaround, such as:
- Hacking the plugin to remove the Create Page option
- Hacking the plugin to force it to create a Post instead of a Page.
Any ideas?
How would I go about officially reporting a bug, or feature request?
Viewing 5 replies - 1 through 5 (of 5 total)
Viewing 5 replies - 1 through 5 (of 5 total)
- The topic ‘Nextgen Gallery bypassing security roles’ is closed to new replies.